7fd66160f5ad92368a4af93dfb893b4f61d351318f60a5b2621972744afd9335 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

tmp
Size

385KB
Sample

230825-czyqaagf53
MD5

45282758d466aa702d8198b69791d69e
SHA1

797bd612df0b1cda746517cddeef7ca480643316
SHA256

7fd66160f5ad92368a4af93dfb893b4f61d351318f60a5b2621972744afd9335
SHA512

e65ea0cdbe2f9da2b8122f96cc5e21b83a24fde859012b045e846dae770f733622a2ec89eb6f31d9addd86c2b62864924bf74e96b89b7aad3572ea2d27fa46fe
SSDEEP

6144:jNxSTVMOCjxlBqQshujYphtTIKcC/DqR3Vu5b823YTzu1vNalT/hwFBjDzVH+fM:jNxSTuUo0ZTIfC/qc5b7NxyT/OPtv

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  tmp
- Size
  
  385KB
- MD5
  
  45282758d466aa702d8198b69791d69e
- SHA1
  
  797bd612df0b1cda746517cddeef7ca480643316
- SHA256
  
  7fd66160f5ad92368a4af93dfb893b4f61d351318f60a5b2621972744afd9335
- SHA512
  
  e65ea0cdbe2f9da2b8122f96cc5e21b83a24fde859012b045e846dae770f733622a2ec89eb6f31d9addd86c2b62864924bf74e96b89b7aad3572ea2d27fa46fe
- SSDEEP
  
  6144:jNxSTVMOCjxlBqQshujYphtTIKcC/DqR3Vu5b823YTzu1vNalT/hwFBjDzVH+fM:jNxSTuUo0ZTIfC/qc5b7NxyT/OPtv
Score

10^/10

evasion
- Modifies firewall policy service
  evasion
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2